-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
>>>>> "Jérôme" == Jérôme Lacoste <jerome.lacoste@smartcardsystem.com> writes:
Jérôme> My goal is to try to make an up-to-date list of the current means
Jérôme> to secure both the hardware and the data (for a laptop). What I
Jérôme> think is important is not only list the protection method but their
Jérôme> drawbacks and level of protection/ways of cracking them. I know
Jérôme> that this is not the perfect list to send this message to, but
Jérôme> maybe some debian users have had some bad experience as well and
Jérôme> perhaps some of them recovered their worktool/jewel, so we might be
Jérôme> able to share something before going further. As my laptop was
Jérôme> running Debian Potato I feel the need to share that within the
Jérôme> family first :)
You missed the, IMHO, most effective/important/simple method: get a laptop
lock. Almost all (if not all) of the new laptops come with a slot for the
lock, and if yours doesn't have one, most locks come with a kit to add a slot.
One of Targus' Defcon locks even has a motion sensor, so you don't have to lock
it up to a secure place, if you don't have one around.
The only drawback that I can think of is that it takes a couple extra seconds
to set up or pack up your laptop. Just make sure that the cable you get is
resistant to cutting (i.e. don't tie your laptop up with a shoelace).
Jérôme> use a BIOS password. This can apparently be reset depending on the
Jérôme> type. Jumper reset, use of a BIOS reseter, etc...
If you use a BIOS password/boot loader security, ADVERTISE IT! Paste a sticker
(or tape a piece of paper) on the top of your laptop, saying something like,
"WARNING: This laptop is password protected. The password can only be removed
by an authorized [manufacturer's name] technician presented with proof of
ownership. So don't even think of stealing it, because it won't do you any
good." Your primary goal is to prevent your laptop from being stolen in the
first place. Your secondary goal is to recover it after it is stolen.
Other tips:
- - paste your name/ph#/address onto your laptop. So if someone finds it, they
can contact you. It probably doesn't really add much security, since the
person who steals your laptop can just remove it, but it doesn't take much
time to do. (Make sure you remember to update it if you move, though.)
- - if you don't mind marking up a piece of equipment worth several thousand
dollars, make sure your laptop has some distinguishing feature that is easily
recognizable. Mine has a bunch of stickers pasted on it. Not only does it
make your laptop easier to recognize, my guess is that people would be less
likely to steal it.
Hubert
- --
____ | -----------------------------------------------------------
| / --+--
| / ___|___ Hubert Chan <hackerhue@crosswinds.net>
| \ | _|_ |
|__| |__|__| GCS/M d- s:- a-- C++ UL+(++++) P++ L++ E++ W++ N++ o?
| | K? w--- O++ M- V- PS-- PE+++ Y+ PGP+ t+ 5 X R- tv+ b+
| / | \ DI++++ D G e++ h! !r !y
| / | \
| | <><------------------ http://www.crosswinds.net/~hackerhue/
PGP/GnuPG fingerprint: 6CC5 822D 2E55 494C 81DD 6F2C 6518 54DF 71FD A37F
Key can be found at http://www.crosswinds.net/~hackerhue/hackerhue.asc
Please encrypt all mail to me if possible.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.5 and Gnu Privacy Guard <http://www.gnupg.org/>
iD8DBQE6VLblZRhU33H9o38RAn5LAJsF5hCEM3SBFVOTA3kuNDiy60mP+ACdFvwT
x1Y7hjofpm/0zli2ZGOjZP8=
=FZqw
-----END PGP SIGNATURE-----